The following plugin provides functionality available through Pipeline-compatible steps. Read more about how to integrate steps into your Pipeline in the Steps section of the Pipeline Syntax page.

For a list of other such plugins, see the Pipeline Steps Reference page.

Anchore Container Image Scanner Plugin

anchore: Anchore Container Image Scanner

  • name
    Name of the file that contains a list of container images for anchore to analyze, evaluate policy, and run queries against. The format for each line is "imageId /path/to/Dockerfile", where the Dockerfile is optional. This file must be made available (created by a prior step) to Anchore Container Image Scanner plugin.
    • Type: String
  • annotations (optional)
      Array/List
      Nested Object
    • key
      • Type: String
    • value
      • Type: String
  • autoSubscribeTagUpdates (optional)
    If selected or set to 'true', the Anchore Container Image Scanner step will instruct Anchore Engine to automatically begin watching the added tag for updates from registry. Default value: 'true'
    • Type: boolean
  • bailOnFail (optional)
    If selected or set to 'true', the Anchore Container Image Scanner step will cause the build to fail if the policy evaluation result is FAIL. Default value: 'true'
    • Type: boolean
  • bailOnPluginFail (optional)
    If selected or set to 'true', the Anchore Container Image Scanner step will cause the build to fail if the plugin encounters an error. Default value: 'true'
    • Type: boolean
  • engineCredentialsId (optional)
    • Type: String
  • engineRetries (optional)
    Number of polling attempts spaced at 5 second intervals spent waiting for the Anchore Engine operation to complete.
    • Type: String
  • engineurl (optional)
    Anchore Engine URL
    • Type: String
  • engineverify (optional)
    • Type: boolean
  • forceAnalyze (optional)
    If selected or set to 'true', the Anchore Container Image Scanner step will instruct Anchore Engine to force analyze the image. Default value: 'false'
    • Type: boolean
  • policyBundleId (optional)
    ID of the policy bundle on Anchore Engine to be used for policy evaluations. If empty, the policy bundle marked active on Anchore Engine will be used by default.
    • Type: String

Was this page helpful?

Please submit your feedback about this page through this quick form.

Alternatively, if you don't wish to complete the quick form, you can simply indicate if you found this page helpful?

    


See existing feedback here.